Scanner is a security data platform that indexes and analyzes security logs directly from Amazon S3, where the data already resides, rather than requiring ingestion into a separate storage system. It is designed as an alternative to traditional SIEMs and data lakes, addressing common pain points such as high ingestion costs, slow query performance, and vendor lock-in. Key characteristics: - Data remains in the customer's own cloud environment (S3), with no data movement to a vendor-controlled system - Supports continuous detection runs against the full stream of incoming security data - Enables historical search across years of log data in seconds - API-first architecture allows programmatic access to all queries and datasets, supporting custom workflows and integrations with existing security tooling - Native Model Context Protocol (MCP) support provides structured access to security data for AI agents and intelligence tools - Designed for AI workloads, enabling large-scale investigations that would otherwise be too slow or costly in traditional SIEMs Compliance and security posture: - SOC 2 Type II certified - GDPR compliant - Data residency options available The platform is used by companies across fintech, healthtech, and SaaS sectors. It is positioned as a security data lake solution with real-time detection capabilities, intended for security teams that require high data volume handling without the cost and operational overhead of conventional SIEMs.